Join Log in
Score:0
twhitney avatar Server

List of services affected by the Apache Log4jshell Vulnerability

pl flag
twhitney

Does there yet exist a list of software that is potentially affected by the Apache Log4jshell vulnerability (CVE-2021-44228) that was announced last Friday?

As someone managing a number of servers with lots of different software running on them it would be nice to have a list of potentially affected software. Not something overly detailed with versions, just anything with any affected version or even anything that might be affected.

To start off the list:

  • Apache Solr
  • Apache Tomcat
  • Apache Struts
  • Apache Druid
  • Apache Flink
  • Apache Swift
  • Elasticsearch
132
0 + 0
Score:0
twhitney avatar Server
pl flag
twhitney

After further research I've found the following two lists which are being actively updated with information about possibly affected software:

CISA: https://github.com/cisagov/log4j-affected-db

NCSC: https://github.com/NCSC-NL/log4shell/blob/main/software/README.md

Please comment, edit, or add another answer with any other useful lists.

0 + 0
ธงชาติไทย
Elon Musk
I sit in a Tesla and translated this thread with Ai:

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.